[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] hack?

Subject: Re: [cobalt-users] hack?
From: "Steve Werby" <steve-lists@xxxxxxxxxxxx>
Date: Fri Sep 27 12:47:31 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

"John D. Gorena" <Support@xxxxxxxxxxxxxxxxxxx> wrote:
> How much tighter can I get it?  I do not allow telnet and we
> use SSH.  Is there something that I am missing?

Security is much more than disabling telnet.  Local and remote users can
gain root access through holes in standard software with known
vulnerabilities, brute force attacks, etc.  Enforcing strong passwords,
disallowing shell access to users who don't need it, turning off services
you don't need, patching vulnerable software, limiting access to certain
ports to specific machines, setting up a firewall, checking for rootkits,
analyzing log files for suspicious activity and checking for unusual files
and permissions are just some of the things that can be done to improve
security.  This topic has been covered endlessly and a few hours reading
through the archives or googling for security will help you see the light.

--
Steve Werby
President, Befriend Internet Services LLC
http://www.befriend.com/

References:
- RE: [cobalt-users] hack?
  - From: Bob G7
- Re: [cobalt-users] hack?
  - From: John D. Gorena

Prev by Date: Re: [cobalt-users] webalizer question
Next by Date: [cobalt-users] scsi tape backup solutions
Previous by thread: [cobalt-users] Mailscanner Raq3 problem
Next by thread: Re: [cobalt-users] hack?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index